github
/
uuWAF
mirror of https://github.com/Safe3/uuWAF
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge branch 'HEAD' of https://github.com/Safe3/uuWAF

pull/11/head
Safe3 2022-10-12 19:41:35 +08:00
parent 27ae5be9a1 e6fb82aa1e
commit 7a85258b59
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
rules/anti-cc.lua
View File

@ -17,15 +17,15 @@ local sh = ngx.shared.ipCache
local ccIp = 'cc-' .. waf.ip local ccIp = 'cc-' .. waf.ip
local c, f = sh:get(ccIp) local c, f = sh:get(ccIp)
if not c then if not c then
sh:set(ccIp, 1, 60, 1) -- 设置1分钟也就是60秒访问计数时间 sh:set(ccIp, 1, 60, 1) -- 设置1分钟也就是60秒访问计数时间
else else
if f == 2 then if f == 2 then
return waf.block(true) -- 重置TCP连接不记录日志 return waf.block(true) -- 重置TCP连接不记录日志
end end
sh:incr(ccIp, 1) sh:incr(ccIp, 1)
if c + 1 >= 360 then if c + 1 >= 360 then -- 频率超过360次
sh:set(ccIp, c + 1, 300, 2) -- 设置5分钟也就是300秒拦截时间 sh:set(ccIp, c + 1, 300, 2) -- 设置5分钟也就是300秒拦截时间
return true, ccIp, true return true, ccIp, true -- 返回参数第一个true为是否检测到第二个参数ccIp为日志记录内容第三个参数true表示拦截false表示只记录不拦截
end end
end end